JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 75.119.152.142

75.119.152.142 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 88%: ?

88%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3188353.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 75.119.152.142

Whois 75.119.152.142

IP Abuse Reports for 75.119.152.142:

This IP address has been reported a total of 26 times from 15 distinct sources. 75.119.152.142 was first reported on June 12th 2026, and the most recent report was 55 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-13 08:09:28 (55 minutes ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇦🇺 FireGuard Server	2026-06-13 05:55:13 (3 hours ago)	Blocked by OPNsense firewall; 8 hits, proto=tcp, ports=443	Port Scan Hacking
🇩🇪 dklueh79	2026-06-13 05:12:40 (3 hours ago)	Probe for vulnerabilities. Path attempted: /wp-sitemap-users-1	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 05:01:00 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:00:55.961143 2026] [security2:error] [pid 7291:tid 7291] [client 75.119.152.142:40788] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wurkroom.biz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wurkroom.biz"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aizkB70Fef-0USc_NUQYHQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ambor	2026-06-13 04:35:08 (4 hours ago)	Honeypot triggered: /wp-json/mepr/v1/members on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 1 ... show more Honeypot triggered: /wp-json/mepr/v1/members on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36. Method: GET show less	Web App Attack
🇧🇪 taivas.nl	2026-06-13 04:33:04 (4 hours ago)	Many_bad_calls	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 04:31:26 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:31:22.347514 2026] [security2:error] [pid 22331:tid 22331] [client 75.119.152.142:40136] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|stinsonbeachsurfandkayak.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "stinsonbeachsurfandkayak.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aizdGlwJdnQBH3cBX7FGoQAAACc"], referer: https://stinsonbeachsurfandkayak.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-13 03:48:32 (5 hours ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 03:39:59 (5 hours ago)	(mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 23:39:51.207929 2026] [security2:error] [pid 18180:tid 18180] [client 75.119.152.142:33002] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.riedmannfamily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.riedmannfamily.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aizRB22oH9Ua1D_OgXf-rAAAAAo"], referer: http://www.riedmannfamily.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇬🇷 setupgr	2026-06-13 03:26:04 (5 hours ago)	(mod_security) mod_security (id:11000011) triggered by 75.119.152.142: 1 in the last 86400 secs; Por ... show more (mod_security) mod_security (id:11000011) triggered by 75.119.152.142: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 06:26:01.143650 2026] [security2:error] [pid 568633:tid 568654] [remote 75.119.152.142:48470] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "contaboserver.net" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "128"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: vmi3188353.contaboserver.net"] [hostname "fashionfragonard.gr"] [uri "/wp-json/buddyboss/v1/members"] [unique_id "aizNyQwee1nHdDysdvf2HQABAxM"] show less	Port Scan
🇩🇪 stinpriza	2026-06-13 03:08:10 (5 hours ago)	Web App Attack	Web App Attack
Anonymous	2026-06-13 03:05:38 (5 hours ago)	2026-06-13T05:05:37.344474+02:00 aion wordpress[225218]: Blocked user enumeration attempt from 75.11 ... show more 2026-06-13T05:05:37.344474+02:00 aion wordpress[225218]: Blocked user enumeration attempt from 75.119.152.142 ... show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 02:58:31 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:58:25.802702 2026] [security2:error] [pid 28908:tid 28908] [client 75.119.152.142:50858] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mail.funnyaaron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.funnyaaron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aizHUUDy0jjyi56BCTkLaQAAABA"], referer: https://mail.funnyaaron.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 YF	2026-06-13 02:00:12 (7 hours ago)	WordPress author enumeration	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 01:54:17 (7 hours ago)	(mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): ... show more (mod_security) mod_security (id:225170) triggered by 75.119.152.142 (vmi3188353.contaboserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 21:54:12.228594 2026] [security2:error] [pid 10005:tid 10005] [client 75.119.152.142:60180] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grandriverhomes.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grandriverhomes.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiy4RBrJljq7ZExWOjtJygAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.155.105

🇰🇿 188.130.156.66

🇲🇲 103.233.206.154

🇧🇬 93.94.141.115

🇷🇴 86.107.235.218

🇫🇷 85.217.140.38

🇺🇸 66.132.172.204

🇯🇵 34.84.161.216

🇺🇸 23.95.137.106

🇰🇷 221.163.5.228

🇺🇸 216.73.216.252

🇺🇸 208.87.243.35

🇦🇷 200.32.52.150

🇬🇧 195.96.139.157

🇲🇽 187.191.48.23

🇨🇳 180.184.178.165

🇿🇦 154.73.5.238

🇺🇸 107.150.103.12

🇹🇼 60.199.224.2

🇰🇷 43.201.33.82